[Git][security-tracker-team/security-tracker][master] Reserve DLA-2149-1 for rails
Utkarsh Gupta
utkarsh at debian.org
Fri Mar 20 00:03:42 GMT 2020
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
816694b3 by Utkarsh Gupta at 2020-03-20T05:33:34+05:30
Reserve DLA-2149-1 for rails
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[20 Mar 2020] DLA-2149-1 rails - security update
+ {CVE-2020-5267}
+ [jessie] - rails 2:4.1.8-1+deb8u6
[19 Mar 2020] DLA-2148-1 amd64-microcode - security update
{CVE-2017-5715}
[jessie] - amd64-microcode 3.20181128.1~deb8u1
=====================================
data/dla-needed.txt
=====================================
@@ -62,8 +62,6 @@ phppgadmin
qtbase-opensource-src (Mike Gabriel)
NOTE: 20200224: No upstream fix available, yet. (sunweaver)
--
-rails (Utkarsh Gupta)
---
ruby-rack
NOTE: 20191219: The security update causes a regression and also, there's a
NOTE: slight possibility of this patch inducing a backdoor on its own. (utkarsh2102)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/816694b3eea624f69660ecf033d058dcb68917ce
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/816694b3eea624f69660ecf033d058dcb68917ce
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200320/b72a00b4/attachment.html>
More information about the debian-security-tracker-commits
mailing list